How can I secure my custom rest api endpoint or add under a already existing rest group
How can I secure my custom rest api endpoint or add under a already existing rest group
authentication
how to add security questions on wp-registration page and validate it
how to add security questions on wp-registration page and validate it
Basic Auth .htaccess on wp-login, but allow logout from woocommerce
From the answer in Password protect a specific URL, we can reverse the condition. To quote his answer, You should be able to do this using the combination of mod_env and the Satisfy any directive. You can use SetEnvIf to check against the Request_URI, even if it’s not a physical path. You can then check … Read more
Access to customer profile with pin code
Users aren’t stored as a post type like most other content in WordPress so you can’t use the per-page password feature in core. You can add a custom meta field to Users for the pin and then add some functions for displaying/handling the form, checking if the pin is valid, and so on. Another option … Read more
The same session information for peer users on two different WordPress servers
The same session information for peer users on two different WordPress servers
Changing auth_redirect() page
Please try this code. function redirect_user() { if ( is_user_logged_in() && ! is_page( ‘login’ ) ) { $return_url = esc_url( home_url( ‘/your-custom-login-page/’ ) ); wp_redirect( $return_url ); exit; } } add_action( ‘template_redirect’, ‘redirect_user’ );
Open authenticed WordPress page from mobile app
Most often a Bearer token is sent in the request headers. Add the Authorization header with a value of Bearer ${authToken} (note the space between Bearer and ${authToken} variable). The plugin should verify the token automatically on each request.
Using WordPress login for a non word-press website
Using WordPress login for a non word-press website
Custom user roles are unable to login
Custom user roles are unable to login
prevent anonymous access to WordPress site (non-admin site)
Add this to the top of your header.php file, or a file that will be loaded at the top of every page. <?php if(!is_user_logged_in()) { wp_redirect(‘/wp-login.php’); exit; } ?> Someone will probably point out a reason why not to do this, but it’s the first thing that came to mind.